13 matches found
CVE-2022-27105
InMailX Outlook Plugin 3.22.0101 is vulnerable to Cross Site Scripting XSS. InMailX Connection names are not sanitzed in the Outlook tab, which allows a local user or network administrator to execute HTML / Javascript in the Outlook of users...
EUVD-2022-31644
Malicious code in bioql PyPI...
CVE-2023-32119
Unauth. Reflected Cross-Site Scripting XSS vulnerability in WPO365 | Mail Integration for Office 365 / Outlook plugin = 1.9.0 versions...
CVE-2023-32119
Unauth. Reflected Cross-Site Scripting XSS vulnerability in WPO365 | Mail Integration for Office 365 / Outlook plugin = 1.9.0 versions...
CVE-2022-27105
InMailX Outlook Plugin 3.22.0101 is vulnerable to Cross Site Scripting XSS. InMailX Connection names are not sanitzed in the Outlook tab, which allows a local user or network administrator to execute HTML / Javascript in the Outlook of users...
CVE-2022-27105
InMailX Outlook Plugin 3.22.0101 is vulnerable to Cross Site Scripting XSS. InMailX Connection names are not sanitzed in the Outlook tab, which allows a local user or network administrator to execute HTML / Javascript in the Outlook of users...
CVE-2022-27105
CVE-2022-27105 affects InMailX Outlook Plugin prior to 3.22.0101. The vulnerability stems from unsanitized InMailX Connection names in the Outlook tab, enabling a local user or network administrator to execute HTML/JavaScript in a user’s Outlook via XSS. Remediation: upgrade to version 3.22.0101 ...
InMailX 跨站脚本漏洞
InMailX, InMailX's enterprise email management, compliance and productivity solution for Microsoft Outlook and Office 365, provides the features and tools users need to effectively manage their email and attachments. A security vulnerability exists in InMailX plugin Outlook versions prior to...
PT-2022-18223 · Unknown · Inmailx Outlook Plugin
Name of the Vulnerable Software and Affected Versions: InMailX Outlook Plugin versions prior to 3.22.0101 Description: The issue allows a local user or network administrator to execute HTML/Javascript in the Outlook of users due to unsanitized InMailX Connection names in the Outlook tab. This...
PT-2022-15674 · Zoom +1 · Zoom Rooms For Conference Room +4
Name of the Vulnerable Software and Affected Versions: Zoom Client for Meetings for Windows versions prior to 5.9.7 Zoom Rooms for Conference Room for Windows versions prior to 5.10.0 Zoom Plugins for Microsoft Outlook for Windows versions prior to 5.10.3 Zoom VDI Windows Meeting Clients versions...
CVE-2021-34413
All versions of the Zoom Plugin for Microsoft Outlook for MacOS before 5.3.52553.0918 contain a Time-of-check Time-of-use TOC/TOU vulnerability during the plugin installation process. This could allow a standard user to write their own malicious application to the plugin directory, allowing the...
CVE-2021-34410
A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac before 5.0.25611.0521 allows for privilege escalation to root...
PT-2002-2419 · Pgp +1 · Pgp +1
Name of the Vulnerable Software and Affected Versions: Microsoft Outlook plug-in PGP versions 7.0, 7.0.3, and 7.0.4 Description: The issue arises when the "Automatically decrypt/verify when opening messages" option is checked and the "Always use Secure Viewer when decrypting" option is not checke...